From 75f4a590a7cc110dc2e97cbc303a909acaa6577c Mon Sep 17 00:00:00 2001
From: y-isono <onosi@amazon.com>
Date: Thu, 3 Apr 2025 13:38:30 +0900
Subject: [PATCH 1/2] add the check for pidMode

---
 README.md         |  2 ++
 check-ecs-exec.sh | 11 +++++++++++
 2 files changed, 13 insertions(+)

diff --git a/README.md b/README.md
index 624f2dd..00d3477 100644
--- a/README.md
+++ b/README.md
@@ -128,6 +128,8 @@ The `check-ecs-exec.sh` doesn't support checking this item for shared VPC subnet
 19. **🟡 Environment Variables : defined**  
 SSM uses the AWS SDK which uses the [default chain](https://docs.aws.amazon.com/sdk-for-java/v1/developer-guide/credentials.html#credentials-default) when determining authentication. This means if AWS_ACCESS_KEY, AWS_ACCESS_KEY_ID, and AWS_SECRET_ACCESS_KEY are defined in the environment variables and the permissions there do not provide the required permissions for SSM to work, then the execute-command will fail. It is recomended not to define these environment variables. 
 
+20. **🟡 PidMode : task**  
+If you are [sharing a PID namespace in a task](https://docs.aws.amazon.com/AmazonECS/latest/developerguide/task_definition_parameters.html#other_task_definition_params), you can only start ECS Exec sessions into one container. See the "Considerations for using ECS Exec" in [the ECS official documentation](https://docs.aws.amazon.com/AmazonECS/latest/developerguide/ecs-exec.html#ecs-exec-considerations) for more details.
 ## Security
 
 See [CONTRIBUTING](CONTRIBUTING.md#security-issue-notifications) for more information.
diff --git a/check-ecs-exec.sh b/check-ecs-exec.sh
index 2a692a7..09778da 100755
--- a/check-ecs-exec.sh
+++ b/check-ecs-exec.sh
@@ -714,4 +714,15 @@ for containerName in $containerNameList; do
   idx=$((idx+1))
 done
 
+# 12. Check PID mode
+pidMode=$(echo "${taskDefJson}" | jq -r ".taskDefinition.pidMode")
+printf "${COLOR_DEFAULT}  PidMode                | "
+if [[ ${pidMode} = "task" ]]; then
+  printf "${COLOR_YELLOW}${pidMode} \n"
+elif [[ ${pidMode} = "host" ]]; then
+  printf "${COLOR_GREEN}${pidMode} \n"
+else
+  printf "${COLOR_GREEN}Not Configured \n"
+fi
+
 printf "\n"

From b9c8a9537b323f8e9d81d1970bff1fcca6451ad4 Mon Sep 17 00:00:00 2001
From: y-isono <onosi@amazon.com>
Date: Wed, 9 Apr 2025 23:06:34 +0900
Subject: [PATCH 2/2] add a line at end of reference on README.md

---
 README.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/README.md b/README.md
index 00d3477..1c75057 100644
--- a/README.md
+++ b/README.md
@@ -130,6 +130,7 @@ SSM uses the AWS SDK which uses the [default chain](https://docs.aws.amazon.com/
 
 20. **🟡 PidMode : task**  
 If you are [sharing a PID namespace in a task](https://docs.aws.amazon.com/AmazonECS/latest/developerguide/task_definition_parameters.html#other_task_definition_params), you can only start ECS Exec sessions into one container. See the "Considerations for using ECS Exec" in [the ECS official documentation](https://docs.aws.amazon.com/AmazonECS/latest/developerguide/ecs-exec.html#ecs-exec-considerations) for more details.
+
 ## Security
 
 See [CONTRIBUTING](CONTRIBUTING.md#security-issue-notifications) for more information.